atc-react icon indicating copy to clipboard operation
atc-react copied to clipboard

Published 20 hours ago verified publisher icon atc-project

[Question] Response Action - Respond to User/Client

Open nicpenning opened this issue 4 years ago • 2 comments

Any thoughts about a response action for responding to clients that reported an email to the security team?

When a user successfully reports a malicious email, I believe it is important to follow up with a message to let them know they successfully reported a malicious message to encourage further vigilance.

This could fall in: RA1003 | Raise personnel awareness or RA1004 | Make personnel report suspicious activity

but I wasn't sure if this should be it's own action or not. Just throwing this out there.

Thanks!

nicpenning avatar Jul 03 '20 00:07 nicpenning

Hello @nicpenning !

Sorry for the delayed answer. We are now working on the second OSCD sprint announcement, extremely busy schedule.

It totally makes sense to add such action to one of the existing Response Actions or create a new one. We will add it to the backlog and implement it in the next sprints.

Thank you!

yugoslavskiy avatar Aug 10 '20 00:08 yugoslavskiy

No problem! Thanks for the work you and others have put into this. I will try to contribute where I can. I look forward to the announcement.

nicpenning avatar Aug 10 '20 02:08 nicpenning